Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft
File: PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft (raw, json)
Hash identifier: 5/WNbM0rK6qNX9SEa/uRryMUVEbyMllystQ3mzQD+cs=
Subject key identifier: E2:46:78:A3:1D:D4:A1:13:3C:08:D2:AE:65:C6:A3:2D:DF:36:07:D3
Authority key identifier: 3D:23:75:8D:FB:6F:1D:43:DC:D6:4D:0F:0A:B2:7E:F7:15:13:59:52
Certificate issuer: /CN=3d23758dfb6f1d43dcd64d0f0ab27ef715135952
Certificate serial: 0196105749853919FAF57B49D4597AC20879
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PSN1jftvHUPc1k0PCrJ-9xUTWVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft
Manifest number: 03BA
Signing time: Mon 07 Apr 2025 13:01:17 +0000
Manifest this update: Mon 07 Apr 2025 13:01:17 +0000
Manifest next update: Tue 08 Apr 2025 13:01:17 +0000
Files and hashes: 1: PSN1jftvHUPc1k0PCrJ-9xUTWVI.crl (hash: QopsBO7NotnE2YGHoHOl57uIN1yz2DpnTDuLQJNwVOs=)
2: cNQzFblAKvFr8hGK7lwE2E-QroQ.roa (hash: 6L0JpdKsg5wIV7DiGvLclmuCfLf4+RgtvQ0jAlVXODk=)
3: sq8t5TnYeFbLwzKDRurrhu8TSwI.roa (hash: BEQOlbgnZNiMmu4zSM6xloAN2ehefN/KrPp5K3vJnWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/PSN1jftvHUPc1k0PCrJ-9xUTWVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 13:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:57:49:85:39:19:fa:f5:7b:49:d4:59:7a:c2:08:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d23758dfb6f1d43dcd64d0f0ab27ef715135952
Validity
Not Before: Apr 7 13:01:17 2025 GMT
Not After : Apr 8 13:01:17 2025 GMT
Subject: CN=e24678a31dd4a1133c08d2ae65c6a32ddf3607d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:43:23:bf:68:d4:2a:47:66:8a:a8:4f:87:49:
e7:8f:dc:7d:da:65:d2:db:90:e8:26:ed:2c:f2:62:
d3:dd:db:72:81:03:41:7b:5d:50:e7:52:03:74:9e:
a3:08:d2:53:54:71:14:19:14:d9:00:08:79:56:4f:
36:af:80:e3:da:71:d4:52:95:6c:76:2a:37:1f:fc:
30:57:25:6a:f4:e3:12:c8:17:b2:44:a4:93:80:39:
b4:28:0c:85:2c:50:1d:46:82:63:92:88:d7:0a:9b:
24:d7:0a:e3:47:50:94:e6:e7:81:f3:f7:de:98:1c:
47:ea:47:b3:80:09:b2:a4:14:94:49:b5:21:3f:a7:
7e:c9:5a:e8:ab:75:37:81:ca:9b:66:9b:eb:e5:c7:
07:23:62:78:b5:12:c0:19:4a:eb:f7:2c:b7:d2:18:
dc:66:4c:f8:f5:3e:d0:f5:ce:ff:7f:f2:6b:83:00:
c1:17:d5:57:04:fc:50:ba:7c:7b:b1:35:d7:15:53:
fa:73:58:99:4e:35:a5:32:31:49:fb:87:7e:8e:21:
de:ac:1d:59:ad:67:c9:dc:e9:64:98:62:23:aa:4f:
cc:ff:77:9d:44:99:32:2e:85:3e:22:ba:1d:84:6b:
49:27:2e:cc:26:9b:fc:02:9f:0e:f6:bf:f1:b4:93:
1b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:46:78:A3:1D:D4:A1:13:3C:08:D2:AE:65:C6:A3:2D:DF:36:07:D3
X509v3 Authority Key Identifier:
keyid:3D:23:75:8D:FB:6F:1D:43:DC:D6:4D:0F:0A:B2:7E:F7:15:13:59:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PSN1jftvHUPc1k0PCrJ-9xUTWVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:fc:3b:35:13:6a:7d:76:ec:9e:d1:2b:55:a9:cd:64:d1:6d:
58:8c:7b:1c:1b:a3:56:dc:07:e6:16:70:98:c6:b7:6a:b2:d6:
30:9e:89:30:1a:8b:6d:ff:46:1d:b2:28:35:f3:0c:b5:28:09:
30:f6:ae:29:73:ec:7a:ba:df:0c:c5:65:99:78:e8:7c:4d:f5:
a7:a7:53:d5:64:2b:e7:7a:28:1a:1b:4b:e0:9e:94:c5:29:45:
ce:ef:63:34:a8:7f:0e:13:14:cb:62:48:bf:3e:e6:94:fe:0c:
8a:bd:b1:5d:35:4c:96:f3:58:7f:28:a4:73:d0:06:7b:34:67:
ab:37:df:a2:aa:01:fd:b0:6c:1f:bf:43:48:6e:87:ac:46:dd:
35:86:20:00:a6:be:87:11:12:b0:3b:59:d2:29:06:ba:d2:51:
d3:68:d5:52:79:7a:10:97:8d:39:85:2b:45:e6:3b:c0:f1:8b:
62:ca:80:34:6e:37:52:0b:64:51:63:01:90:e8:62:51:68:23:
95:29:80:05:c2:d8:d3:ca:48:68:aa:01:b4:e8:27:74:7b:b5:
c0:90:7d:56:7e:b4:eb:20:52:3e:21:d5:73:aa:76:53:ff:27:
78:c4:ed:31:f1:30:6a:07:31:d2:87:4e:7e:10:6b:9b:3d:90:
b6:bd:63:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:33:37 2025 by rpki-client